1-16
Table 1-12 TCP or UDP port values
Type Value
TCP
CHARgen (19), bgp (179), cmd (514), daytime (13), discard (9), domain
(53), echo (7), exec (512), finger (79), ftp (21), ftp-data (20), gopher (70),
hostname (101), irc (194), klogin (543), kshell (544), login (513), lpd
(515), nntp (119), pop2 (109), pop3 (110), smtp (25), sunrpc (111), tacacs
(49), talk (517), telnet (23), time (37), uucp (540), whois (43), www (80)
UDP
biff (512), bootpc (68), bootps (67), discard (9), dns (53), dnsix (90),
echo (7), mobilip-ag (434), mobilip-mn (435), nameserver (42),
netbios-dgm (138), netbios-ns (137), netbios-ssn (139), ntp (123), rip
(520), snmp (161), snmptrap (162), sunrpc (111), syslog (514), tacacs-ds
(65), talk (517), tftp (69), time (37), who (513), xdmcp (177)
If the protocol type is ICMP, you can also define the information listed in
Table 1-13.
Table 1-13 ICMP-specific ACL rule information
Parameters Type Function Description
icmp-type icmp-type
icmp-code
Type and message
code information of
ICMP packets
Specifies the type and
message code
information of ICMP
packets in the ACL rule
icmp-type: ICMP
message type, ranging
from 0 to 255
icmp-code: ICMP
message code,
ranging from 0 to 255
If the protocol type is ICMP, you can also just input the ICMP message name after the icmp-type
keyword. See
Table 1-14 for ICMP messages.
Table 1-14 ICMP messages
Name ICMP type ICMP code
echo
Type=8 Code=0
echo-reply
Type=0 Code=0
fragmentneed-DFset
Type=3 Code=4
host-redirect
Type=5 Code=1
host-tos-redirect
Type=5 Code=3
host-unreachable
Type=3 Code=1
information-reply
Type=16 Code=0
information-request
Type=15 Code=0
net-redirect
Type=5 Code=0
net-tos-redirect
Type=5 Code=2
net-unreachable
Type=3 Code=0
parameter-problem
Type=12 Code=0
port-unreachable
Type=3 Code=3
protocol-unreachable
Type=3 Code=2
reassembly-timeout
Type=11 Code=1
To Next Page
Loading...
Need help?
General